General
-
Target
9153f234e47767f3977109c1c34d5b54_JaffaCakes118
-
Size
6.4MB
-
Sample
240603-lr6wcsae21
-
MD5
9153f234e47767f3977109c1c34d5b54
-
SHA1
cdbc74459dca9c89b687b30fd3804def61331cd0
-
SHA256
6826409cfb7bb8f5547285e161a4961ef4489569927e6a05e47f9df730511b14
-
SHA512
adc4f15ef1085732eaaf4b3547f3dba66d44a9a1e92ca7e423c6049ee498c278bce2ff69214038891f9ea3bb54276c3442429e6bc215f0943a6f618a82aae7d6
-
SSDEEP
98304:2jSWbtcmhj1pDhsthTFkkSzdl//wg6ih3eJsVudavveR:ibeYBeFknJ/wNiwdqWR
Static task
static1
Behavioral task
behavioral1
Sample
9153f234e47767f3977109c1c34d5b54_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
9153f234e47767f3977109c1c34d5b54_JaffaCakes118.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
9153f234e47767f3977109c1c34d5b54_JaffaCakes118
-
Size
6.4MB
-
MD5
9153f234e47767f3977109c1c34d5b54
-
SHA1
cdbc74459dca9c89b687b30fd3804def61331cd0
-
SHA256
6826409cfb7bb8f5547285e161a4961ef4489569927e6a05e47f9df730511b14
-
SHA512
adc4f15ef1085732eaaf4b3547f3dba66d44a9a1e92ca7e423c6049ee498c278bce2ff69214038891f9ea3bb54276c3442429e6bc215f0943a6f618a82aae7d6
-
SSDEEP
98304:2jSWbtcmhj1pDhsthTFkkSzdl//wg6ih3eJsVudavveR:ibeYBeFknJ/wNiwdqWR
Score6/10-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-